Keep Your Data Secure
Throughout the
Cloud Lifecycle

The benefits of the cloud have grown too strong for businesses to ignore—it offers lower infrastructure spending costs, greater business agility, and flexible scalability. That’s why more companies are migrating their business-critical enterprise workloads to the cloud than ever before.

In fact, according to the Oracle and KPMG Cloud Threat Report, today, nearly 90 percent of companies are using software as a service (SaaS) and 76 percent are using infrastructure as a service (IaaS)—and 50 percent expect to move all their data to the cloud in the next two years.¹

But unfortunately, despite the benefits it gives companies, increased cloud adoption still has its costs. Many companies have developed new security blind spots as their IT teams and cloud service providers work to secure their data. And it’s causing areas of concern—Gartner forecasts that by 2025, 99 percent of cloud security failures will be the customer’s fault.²

Gartner forecasts that by 2025, 99 percent of cloud security failures will be the customer’s fault.

Enterprise cloud security and privacy administrators have a lot of responsibility already. They’re expected to be knowledgeable about cloud security services, know how to deploy them without sacrificing business continuity, and correctly manage secure resource configurations in a rapidly changing environment. When you consider that most public-cloud tenants mix on-premises, cloud, and multicloud deployments at scale, overcoming this challenge can be difficult—even with a well-staffed team of cloud security experts.

A two-pronged security strategy for security posture management

Cloud security posture management of Oracle Cloud Infrastructure tenancies consists of two cloud security services:

• Oracle Security Zones: Special compartments designed to enforce implicit and explicit security policies.
• Oracle Cloud Guard: A scalable data processing security service that acts as the command center for Oracle cloud security posture management. Oracle Cloud Guard gives a comprehensive picture of the security and risk posture of a customer’s tenants in Oracle Cloud Infrastructure.

Oracle Security Zones and Oracle Cloud Guard mark a new approach to cloud security, giving customers the ability to avoid insecurely configured cloud services at different stages of the resource configuration lifecycle.

Oracle Security Zones focuses on a preventative strategy that can inhibit the creation of resources that violate security requirements, while Oracle Cloud Guard offers a detect-and-respond framework that allows for additional context before remediation is enforced.

Oracle Security Zones and Oracle Cloud Guard are cloud security services that support the entire Oracle Cloud Infrastructure ecosystem supporting the traditional console user interface as well as programmatic interfaces (such as Oracle Cloud Infrastructure API, CLI, SDK, and so on).

This two-pronged approach helps Oracle Cloud users deploy securely from day one, and provides the means to continuously monitor security and risk across the entire Oracle Cloud Infrastructure ecosystem.